21日 木曜日、友引

+ cm-x86-14.1-r4 released
https://www.android-x86.org/releases/releasenote-cm-x86-14-1-r4.html

+ RHSA-2020:2239 Important: java-1.8.0-ibm security update
https://access.redhat.com/errata/RHSA-2020:2239
CVE-2019-2949
CVE-2020-2654
CVE-2020-2754
CVE-2020-2755
CVE-2020-2756
CVE-2020-2757
CVE-2020-2781
CVE-2020-2800
CVE-2020-2803
CVE-2020-2805
CVE-2020-2830

+ RHSA-2020:2236 Important: java-1.7.1-ibm security update
https://access.redhat.com/errata/RHSA-2020:2236
CVE-2020-2654
CVE-2020-2756
CVE-2020-2757
CVE-2020-2781
CVE-2020-2800
CVE-2020-2803
CVE-2020-2805
CVE-2020-2830

+ RHSA-2020:2238 Important: java-1.7.1-ibm security update
https://access.redhat.com/errata/RHSA-2020:2238
CVE-2020-2654
CVE-2020-2756
CVE-2020-2757
CVE-2020-2781
CVE-2020-2800
CVE-2020-2803
CVE-2020-2805
CVE-2020-2830

+ RHSA-2020:2237 Important: java-1.8.0-ibm security update
https://access.redhat.com/errata/RHSA-2020:2237
CVE-2019-2949
CVE-2020-2654
CVE-2020-2754
CVE-2020-2755
CVE-2020-2756
CVE-2020-2757
CVE-2020-2781
CVE-2020-2800
CVE-2020-2803
CVE-2020-2805
CVE-2020-2830

+ RHSA-2020:2241 Important: java-1.8.0-ibm security update
https://access.redhat.com/errata/RHSA-2020:2241
CVE-2019-2949
CVE-2020-2654
CVE-2020-2754
CVE-2020-2755
CVE-2020-2756
CVE-2020-2757
CVE-2020-2781
CVE-2020-2800
CVE-2020-2803
CVE-2020-2805
CVE-2020-2830

+ Announcing Beta Release of Red Hat Enterprise Linux 7.9
https://access.redhat.com/announcements/5088681

+ About the security content of Xcode 11.5
https://support.apple.com/ja-jp/HT211183
CVE-2020-11008

+ Linux kernel 5.6.14, 5.4.42, 4.19.124, 4.14.181, 4.9.224, 4.4.224 released
https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.6.14
https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.4.42
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.124
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.181
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.224
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.224

+ JVNVU#92065932 ISC BIND 9 に複数の脆弱性
http://jvn.jp/vu/JVNVU92065932/index.html
CVE-2020-8616
CVE-2020-8617

+ Apache Tomcatの脆弱性情報(High: CVE-2020-9484)
https://security.sios.com/vulnerability/tomcat-security-vulnerability-20200521.html
CVE-2020-9484

JVNVU#92838573 Emerson 製 OpenEnterprise に複数の脆弱性
http://jvn.jp/vu/JVNVU92838573/index.html

JVNVU#92757733 Rockwell Automation 製 EDS Subsystem に複数の脆弱性
http://jvn.jp/vu/JVNVU92757733/index.html

厚労省が雇用調整助成金システムの稼働を延期、他人の情報を閲覧できる不具合
https://xtech.nikkei.com/atcl/nxt/news/18/07906/?ST=nxt_thmit_security

緊急事態宣言解除後のセキュリティーに不備はないか、JNSAがチェックリスト
https://xtech.nikkei.com/atcl/nxt/news/18/07901/?ST=nxt_thmit_security